chouhada

J'ai bien téléchargé le parefeu Zone Alarm, version gratuite. Je voudrais savoir s'il peut fonctionner normalement en même temps avec le parefeu XP. J'hésite de l'installer avant de recevoir les conseils des internautes du forum.

Je voudrais savoir si je peux trouver un antivirus gratuit et efficace qui contient un parefeu. Car j'ai entendu dire que le parfeu de XP n'est pas suffisant.

Merci de vos éclaircissements. Je veux maintenant savoir si je peux utiliser deux navigateurs en même temps? Iexplorer et Firefox? Je sais que ça marche mais , est-ce que ça ne rend pas la navigation lente?

Je voudrais savoir s'il ya un serveur plus rapide que Internet Explorer? Si oui, le quel?

Bonsoir, je te remercie infiniment de l'aide que tu m'as apporté au sujet de mon problème. je te fais savoir que je n'ai pas appliqué ta dernière recommandation. Car j'avais déjà formaté mon PC. juste après le formatage et avant la connexion à Internet j'ai installé l'antivirus AVG8. j'ai scanné le disque; il y avait plein de virus. il y a ceux qui ont été éradiqués et ceux qui ont été placés en quarantaine. Maintenant je travaille comme à l'ordianaire sans problèmes.

Merci encore une fois! Voici le rapport de COMBOFIX après le scann: ComboFix 08-12-21.04 - WTrust-Enigma 2008-12-22 22:42:51.1 - NTFSx86 Microsoft Windows XP Professionnel 5.1.2600.2.1252.1.1036.18.510.300 [GMT 0:00] Lancé depuis: c:\documents and settings\WTrust-Enigma\Bureau\ComboFix.exe * Un nouveau point de restauration a été créé . (((((((((((((((((((((((((((((((((((( Autres suppressions )))))))))))))))))))))))))))))))))))))))))))))))) . c:\windows\system32\AutoRun.inf c:\windows\system32\hpowiax3.dll c:\windows\system32\VB4FR32.DLL . ((((((((((((((((((((((((((((( Fichiers créés du 2008-11-22 au 2008-12-22 )))))))))))))))))))))))))))))))))))) . 2008-12-22 18:00 . 2008-12-22 18:00 <REP> d-------- c:\program files\Malwarebytes' Anti-Malware 2008-12-22 18:00 . 2008-12-22 18:00 <REP> d-------- c:\documents and settings\WTrust-Enigma\Application Data\Malwarebytes 2008-12-22 18:00 . 2008-12-22 18:00 <REP> d-------- c:\documents and settings\All Users\Application Data\Malwarebytes 2008-12-22 18:00 . 2008-12-03 19:52 38,496 --a------ c:\windows\system32\drivers\mbamswissarmy.sys 2008-12-22 18:00 . 2008-12-03 19:52 15,504 --a------ c:\windows\system32\drivers\mbam.sys 2008-12-21 01:44 . 2008-12-22 18:21 <REP> d-------- c:\program files\allchar 2008-12-21 01:44 . 2006-11-06 21:28 608,448 --a------ c:\windows\system32\comctl32.ocx 2008-12-21 01:44 . 2006-11-06 21:28 200,704 --a------ c:\windows\system32\THREED32.OCX 2008-12-21 01:44 . 2006-11-06 21:28 140,288 --a------ c:\windows\system32\COMDLG32.OCX 2008-12-21 01:44 . 2006-11-06 21:28 63,488 --a------ c:\windows\system32\GAUGE32.OCX 2008-12-21 01:44 . 2006-11-06 21:28 52,736 --a------ c:\windows\system32\SPIN32.OCX 2008-12-21 01:44 . 2006-11-06 21:28 52,736 --a------ c:\windows\system32\PICCLP32.OCX 2008-12-21 01:44 . 2006-11-06 21:28 39,424 --a------ c:\windows\system32\CCTLFR32.DLL 2008-12-21 01:43 . 2006-11-06 21:28 722,192 --a------ c:\windows\system32\VB40032.DLL 2008-12-21 01:43 . 2006-11-06 21:28 61,952 --a------ c:\windows\ST4UNST.EXE 2008-12-21 00:46 . 2008-12-21 00:46 <REP> d-------- c:\documents and settings\WTrust-Enigma\Application Data\HP 2008-12-21 00:45 . 2008-12-21 00:45 <REP> d-------- c:\documents and settings\All Users\Application Data\WEBREG 2008-12-21 00:44 . 2008-12-21 00:44 <REP> d-------- c:\documents and settings\All Users\Application Data\Hewlett-Packard 2008-12-21 00:44 . 2007-03-30 15:07 267,864 -ra------ c:\windows\system32\hpzids01.dll 2008-12-21 00:44 . 2007-03-28 14:01 117,760 --a------ c:\windows\system32\hpzll5ha.dll 2008-12-21 00:42 . 2008-12-21 00:42 <REP> d-------- c:\documents and settings\WTrust-Enigma\Application Data\HPAppData 2008-12-21 00:42 . 2008-12-21 00:42 <REP> d-------- c:\documents and settings\All Users\Application Data\HPSSUPPLY 2008-12-21 00:40 . 2008-12-21 00:40 <REP> d-------- c:\program files\Fichiers communs\HP 2008-12-21 00:40 . 2008-12-21 00:40 <REP> d-------- c:\documents and settings\All Users\Application Data\HP Product Assistant 2008-12-21 00:40 . 2008-12-21 00:40 <REP> d-------- c:\documents and settings\All Users\Application Data\HP 2008-12-21 00:39 . 2008-12-21 00:39 <REP> d-------- c:\program files\Hewlett-Packard 2008-12-21 00:39 . 2008-12-21 00:39 <REP> d-------- c:\program files\Fichiers communs\Hewlett-Packard 2008-12-21 00:38 . 2008-12-21 00:42 <REP> d-------- c:\program files\HP 2008-12-21 00:37 . 2008-12-21 00:45 160,372 --a------ c:\windows\hpoins14.dat 2008-12-21 00:37 . 2007-06-05 23:07 2,000 --------- c:\windows\hpomdl14.dat 2008-12-21 00:34 . 2007-03-17 16:11 569,344 -ra------ c:\windows\system32\hpotscl3.dll 2008-12-21 00:34 . 2007-03-08 04:20 364,544 -ra------ c:\windows\system32\hppldcoi.dll 2008-12-21 00:34 . 2007-03-08 04:20 309,760 -ra------ c:\windows\system32\difxapi.dll 2008-12-21 00:34 . 2007-03-17 16:11 303,104 -ra------ c:\windows\system32\hpovst10.dll 2008-12-21 00:34 . 2007-03-08 04:20 49,920 -ra------ c:\windows\system32\drivers\HPZid412.sys 2008-12-21 00:34 . 2004-08-03 23:01 25,856 --a------ c:\windows\system32\drivers\usbprint.sys 2008-12-21 00:34 . 2007-03-08 04:20 21,568 -ra------ c:\windows\system32\drivers\HPZius12.sys 2008-12-21 00:34 . 2007-03-08 04:20 16,496 -ra------ c:\windows\system32\drivers\HPZipr12.sys 2008-12-21 00:34 . 2004-08-03 22:58 15,104 --a------ c:\windows\system32\drivers\usbscan.sys 2008-12-21 00:33 . 2008-12-21 00:33 <REP> d-------- c:\windows\Documalis Free Scanner 1.0 2008-12-20 17:56 . 2008-12-20 17:57 <REP> d-------- C:\rsit 2008-12-20 17:56 . 2008-12-20 17:57 <REP> d-------- c:\program files\trend micro 2008-12-20 01:57 . 2008-12-22 18:11 <REP> d-------- c:\program files\oovooToolbar 2008-12-20 01:57 . 2008-12-20 01:57 <REP> d-------- c:\documents and settings\WTrust-Enigma\Application Data\ooVoo Details 2008-12-20 01:56 . 2008-12-20 23:08 <REP> d-------- c:\program files\ooVoo 2008-12-20 01:24 . 2008-12-20 01:24 <REP> d-------- c:\program files\MSN Messenger 2008-12-19 20:35 . 2008-12-19 20:35 <REP> d-------- c:\documents and settings\All Users\Application Data\Kaspersky Lab Setup Files 2008-12-19 16:02 . 2008-12-19 16:02 <REP> d-------- c:\documents and settings\WTrust-Enigma\Application Data\Foxit 2008-12-19 15:58 . 2008-12-19 15:58 <REP> d-------- c:\program files\CCleaner 2008-12-19 14:18 . 2008-12-19 14:18 <REP> d-------- c:\windows\Sun 2008-12-19 14:18 . 2008-12-19 14:17 410,984 --a------ c:\windows\system32\deploytk.dll 2008-12-19 14:18 . 2008-12-19 14:17 73,728 --a------ c:\windows\system32\javacpl.cpl 2008-12-19 14:17 . 2008-12-19 14:17 <REP> d-------- c:\program files\Java 2008-12-19 13:50 . 2008-12-19 23:32 <REP> d-------- c:\documents and settings\WTrust-Enigma\Application Data\dvdcss 2008-12-19 01:22 . 2008-12-19 01:22 <REP> d-------- c:\documents and settings\WTrust-Enigma\Application Data\vlc 2008-12-19 01:20 . 2008-12-19 01:20 <REP> d-------- c:\program files\VideoLAN 2008-12-18 23:40 . 2008-12-18 23:40 0 --a------ c:\windows\nsreg.dat 2008-12-18 23:21 . 2008-12-21 00:34 <REP> d----c--- c:\windows\system32\DRVSTORE 2008-12-18 23:21 . 2008-12-19 12:10 <REP> d-------- c:\documents and settings\WTrust-Enigma\Contacts 2008-12-18 20:16 . 2008-12-18 20:18 <REP> d-------- c:\windows\SxsCaPendDel 2008-12-18 17:21 . 2008-12-20 00:32 <REP> d-------- c:\documents and settings\WTrust-Enigma\Tracing 2008-12-18 17:18 . 2006-10-16 16:10 23,856 --a------ c:\windows\system32\spupdsvc.exe 2008-12-18 15:39 . 2008-12-18 15:39 385 --a------ c:\windows\ODBC.INI 2008-12-18 15:38 . 2008-12-18 15:38 <REP> d-------- c:\windows\SHELLNEW 2008-12-18 15:38 . 2008-12-18 15:38 <REP> d-------- c:\program files\Microsoft.NET 2008-12-18 15:33 . 2008-12-18 15:33 <REP> dr-h----- C:\MSOCache 2008-12-18 14:40 . 2008-12-18 21:41 <REP> d-------- c:\program files\Internet Download Manager 2008-12-18 14:40 . 2008-12-19 15:39 <REP> d-------- c:\documents and settings\WTrust-Enigma\Application Data\IDM 2008-12-18 14:40 . 2008-12-22 22:44 <REP> d-------- c:\documents and settings\WTrust-Enigma\Application Data\DMCache 2008-12-18 14:25 . 2008-12-18 14:25 <REP> d-------- c:\program files\Fichiers communs\Windows Live 2008-12-18 13:23 . 2008-12-18 13:45 <REP> d-a------ c:\documents and settings\All Users\Application Data\TEMP 2008-12-18 13:23 . 2008-12-18 13:23 <REP> d-------- c:\documents and settings\All Users\Application Data\SpeedBit 2008-12-18 13:22 . 2008-12-18 13:23 <REP> d-------- c:\program files\Google 2008-12-18 12:47 . 2008-12-18 12:47 <REP> d-------- c:\program files\LG Electronics 2008-12-18 12:47 . 2008-12-18 12:47 <REP> d-------- c:\documents and settings\All Users\Application Data\InstallShield 2008-12-18 12:47 . 2007-08-28 15:17 21,632 --a------ c:\windows\system32\drivers\lgevdomodem.sys 2008-12-18 12:47 . 2007-08-28 15:17 19,840 --a------ c:\windows\system32\drivers\lgevdodiag.sys 2008-12-18 12:47 . 2007-08-28 15:17 19,840 --a------ c:\windows\system32\drivers\lgevdoatc.sys 2008-12-18 12:47 . 2007-08-28 15:17 12,800 --a------ c:\windows\system32\drivers\lgevdobus.sys 2008-12-18 11:26 . 2008-12-18 11:26 8,192 --a------ c:\windows\REGLOCS.OLD . (((((((((((((((((((((((((((((((((( Compte-rendu de Find3M )))))))))))))))))))))))))))))))))))))))))))))))) . 2008-12-20 01:56 --------- d--h--w c:\program files\InstallShield Installation Information 2008-12-20 00:26 --------- d-----w c:\documents and settings\All Users\Application Data\avg8 2008-12-18 12:47 --------- d-----w c:\program files\Fichiers communs\InstallShield 2008-12-18 12:40 --------- d-----w c:\program files\Notepad++ 2008-12-18 00:09 --------- d-----w c:\documents and settings\WTrust-Enigma\Application Data\AVGTOOLBAR 2008-12-18 00:05 --------- d-----w c:\program files\Analog Devices 2008-12-17 23:47 --------- d-----w c:\program files\TUGZip 2008-12-17 23:41 --------- d-----w c:\program files\WPI 2008-12-17 23:35 --------- d-----w c:\program files\Windows Trust 2008-12-17 23:35 --------- d-----w c:\program files\Unlocker 2008-12-17 23:35 --------- d-----w c:\program files\Paint.NET . ((((((((((((((((((((((((((((((((( Points de chargement Reg )))))))))))))))))))))))))))))))))))))))))))))))) . . *Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés REGEDIT4 [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "UMService"="c:\program files\LG Electronics\Modem USB LG Electronics\UMAService.exe" [2008-05-09 102400] "swg"="c:\program files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe" [2008-12-18 171448] "IDMan"="c:\program files\Internet Download Manager\IDMan.exe" [2008-10-28 2680240] "oovoo.exe"="c:\program files\ooVoo\oovoo.exe" [2008-11-20 14202672] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "IgfxTray"="c:\windows\system32\igfxtray.exe" [2006-05-25 155648] "HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2006-05-25 126976] "SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2008-12-19 136600] "HP Software Update"="c:\program files\HP\HP Software Update\HPWuSchd2.exe" [2007-03-11 49152] c:\documents and settings\All Users\Menu D‚marrer\Programmes\D‚marrage\ HP Digital Imaging Monitor.lnk - c:\program files\HP\Digital Imaging\bin\hpqtra08.exe [2007-03-11 210520] [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "SynchronousMachineGroupPolicy"= 0 (0x0) "SynchronousUserGroupPolicy"= 0 (0x0) [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer] "NoResolveTrack"= 1 (0x1) "HideRunAsVerb"= 1 (0x1) [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer] "NoSMHelp"= 1 (0x1) "ForceClassicControlPanel"= 1 (0x1) "NoResolveTrack"= 1 (0x1) "NoSMBalloonTip"= 1 (0x1) "NoSMConfigurePrograms"= 1 (0x1) "NoStrCmpLogical"= 0 (0x0) "NoWelcomeScreen"= 1 (0x1) [HKEY_USERS\.default\software\microsoft\windows\currentversion\policies\explorer] "NoSMHelp"= 1 (0x1) "ForceClassicControlPanel"= 1 (0x1) "NoResolveTrack"= 1 (0x1) "NoSMBalloonTip"= 1 (0x1) "NoSMConfigurePrograms"= 1 (0x1) "NoStrCmpLogical"= 0 (0x0) "NoWelcomeScreen"= 1 (0x1) [HKEY_LOCAL_MACHINE\software\microsoft\security center] "AntiVirusOverride"=dword:00000001 "AntiVirusDisableNotify"=dword:00000001 "FirewallOverride"=dword:00000001 "UpdatesDisableNotify"=dword:00000001 "UacDisableNotify"=dword:00000001 [HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc] "AntiVirusOverride"=dword:00000001 "AntiVirusDisableNotify"=dword:00000001 "FirewallDisableNotify"=dword:00000001 "FirewallOverride"=dword:00000001 "UpdatesDisableNotify"=dword:00000001 "UacDisableNotify"=dword:00000001 [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile] "EnableFirewall"= 0 (0x0) "DisableUnicastResponsesToMulticastBroadcast"= 0 (0x0) [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\system32\\sessmgr.exe"= "c:\\Program Files\\LG Electronics\\Modem USB LG Electronics\\UMAService.exe"= "c:\\Program Files\\Internet Download Manager\\IDMan.exe"= "c:\\Program Files\\VideoLAN\\VLC\\vlc.exe"= "c:\\Program Files\\MSN Messenger\\msnmsgr.exe"= "c:\\Program Files\\Malwarebytes' Anti-Malware\\mbam.exe"= "c:\\WINDOWS\\system32\\userinit.exe"= "c:\\Program Files\\LG Electronics\\Modem USB LG Electronics\\IEUM.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqSTE08.exe"= R3 abp470n5;abp470n5;\??\c:\windows\system32\drivers\pjkmnn.sys [] R3 UsbEvdoAtc;LGE EVDO USB Serial Port;c:\windows\system32\DRIVERS\lgevdoatc.sys [2008-12-18 19840] R3 usbevdobus;LGE EVDO Composite USB Device;c:\windows\system32\DRIVERS\lgevdobus.sys [2008-12-18 12800] R3 UsbEvdoDiag;LGE EVDO USB Serial DM Port;c:\windows\system32\DRIVERS\lgevdodiag.sys [2008-12-18 19840] R3 USBEVDOModem;LGE EVDO USB Modem;c:\windows\system32\DRIVERS\lgevdomodem.sys [2008-12-18 21632] S3 cpuz127;cpuz127;\??\c:\docume~1\WTRUST~1\LOCALS~1\Temp\cpuz_x32.sys [] [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost] HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12 hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc NETSVCS REQUIRES REPAIRS - current entries shown 6to4 AppMgmt AudioSrv Browser CryptSvc DMServer DHCP EventSystem FastUserSwitchingCompatibility HidServ Ias Iprip Irmon LanmanServer LanmanWorkstation Netman Nla Ntmssvc NWCWorkstation Nwsapagent Rasauto Rasman Remoteaccess Schedule Seclogon SENS Sharedaccess SRService Tapisrv Themes W32Time WZCSVC Wmi WmdmPmSp winmgmt xmlprov BITS ShellHWDetection WmdmPmSN HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs *Newly Created Service* - PROCEXP90 . - - - - ORPHELINS SUPPRIMES - - - - WebBrowser-{A057A204-BACC-4D26-8087-36EE87E26986} - (no file) HKCU-Run-msnmsgr - c:\program files\Windows Live\Messenger\msnmsgr.exe . ------- Examen supplémentaire ------- . uStart Page = hxxp://www.google.fr/ mStart Page = hxxp://www.google.com/ IE: Ajouter à Kaspersky Anti-Bannière - c:\program files\Kaspersky Lab\Kaspersky Internet Security 7.0\ie_banner_deny.htm IE: E&xporter vers Microsoft Excel - c:\progra~1\MICROS~1\OFFICE11\EXCEL.EXE/3000 IE: Télécharger avec IDM - c:\program files\Internet Download Manager\IEExt.htm IE: Télécharger le contenu de video FLV avec IDM - c:\program files\Internet Download Manager\IEGetVL.htm IE: Télécharger tous les liens avec IDM - c:\program files\Internet Download Manager\IEGetAll.htm TCP: {A19C219C-8204-45A6-9E70-ED9B891EB1A6} = 192.168.50.55 196.12.209.6 . ************************************************************************** catchme 0.3.1367 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2008-12-22 22:44:01 Windows 5.1.2600 Service Pack 2 NTFS Recherche de processus cachés ... Recherche d'éléments en démarrage automatique cachés ... Recherche de fichiers cachés ... Scan terminé avec succès Fichiers cachés: 0 ************************************************************************** . --------------------- DLLs chargées dans les processus actifs --------------------- - - - - - - - > 'winlogon.exe'(512) c:\windows\system32\SETUPAPI.dll - - - - - - - > 'lsass.exe'(616) c:\windows\system32\SETUPAPI.dll . Heure de fin: 2008-12-22 22:45:04 ComboFix-quarantined-files.txt 2008-12-22 22:44:56 Avant-CF: 6 483 099 648 octets libres Après-CF: 6,723,264,512 octets libres WindowsXP-KB310994-SP2-Pro-BootDisk-FRA.exe [boot loader] timeout=2 default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS [operating systems] c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professionnel" /fastdetect /noexecute=optin multi(0)disk(0)rdisk(0)partition(2)\WINDOWS="Microsoft Windows XP Professional" /noexecute=optin /fastdetect 269

D'abord, merci bien de l'intérêt que vous donnez à mon problème. J'ai désinstallé OOVOO Toolbar. Effectivement mon FAI se trouve au Maroc. J'ai fais le scan avec le programme MBAM Voici le rapport mbam-log-2008-12-22 (18-20-20).txt: Malwarebytes' Anti-Malware 1.31 Version de la base de données: 1532 Windows 5.1.2600 Service Pack 2 22/12/2008 18:20:20 mbam-log-2008-12-22 (18-20-20).txt Type de recherche: Examen complet (C:\|D:\|) Eléments examinés: 63311 Temps écoulé: 11 minute(s), 15 second(s) Processus mémoire infecté(s): 0 Module(s) mémoire infecté(s): 0 Clé(s) du Registre infectée(s): 0 Valeur(s) du Registre infectée(s): 0 Elément(s) de données du Registre infecté(s): 2 Dossier(s) infecté(s): 0 Fichier(s) infecté(s): 0 Processus mémoire infecté(s): (Aucun élément nuisible détecté) Module(s) mémoire infecté(s): (Aucun élément nuisible détecté) Clé(s) du Registre infectée(s): (Aucun élément nuisible détecté) Valeur(s) du Registre infectée(s): (Aucun élément nuisible détecté) Elément(s) de données du Registre infecté(s): HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Start_ShowHelp (Hijack.StartMenu) -> Bad: (0) Good: (1) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\DisableTaskMgr (Hijack.TaskManager) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully. Dossier(s) infecté(s): (Aucun élément nuisible détecté) Fichier(s) infecté(s): (Aucun élément nuisible détecté)

Voici les deux rapports de HijachThis: [size="7"]Logfile[/size] of random's system information tool 1.05 (written by random/random) Run by WTrust-Enigma at 2008-12-20 17:56:19 Microsoft Windows XP Professionnel Service Pack 2 System drive C: has 7 GB (69%) free of 10 GB Total RAM: 510 MB (57% free) Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 17:57:26, on 20/12/2008 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.20627) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Java\jre6\bin\jqs.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\igfxtray.exe C:\WINDOWS\system32\hkcmd.exe C:\Program Files\Java\jre6\bin\jusched.exe C:\Program Files\LG Electronics\Modem USB LG Electronics\UMAService.exe C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe C:\Program Files\Internet Download Manager\IDMan.exe C:\Program Files\ooVoo\oovoo.exe C:\Program Files\Internet Download Manager\IEMonitor.exe C:\Program Files\LG Electronics\Modem USB LG Electronics\IEUM.exe C:\Program Files\Internet Explorer\iexplore.exe C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\winshhabw.exe C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\winkrubre.exe C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\winhrnont.exe C:\Program Files\MSN Messenger\msnmsgr.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Documents and Settings\WTrust-Enigma\Bureau\RSIT.exe C:\Program Files\trend micro\WTrust-Enigma.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll (file missing) O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll O2 - BHO: ooVoo Toolbar - {A057A204-BACC-4D26-8087-36EE87E26986} - C:\PROGRA~1\OOVOOT~1\OOVOOT~1.DLL O2 - BHO: AVG Security Toolbar - {A057A204-BACC-4D26-9990-79A187E2698E} - C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL (file missing) O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O3 - Toolbar: AVG Security Toolbar - {A057A204-BACC-4D26-9990-79A187E2698E} - C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL (file missing) O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll O3 - Toolbar: ooVoo Toolbar - {A057A204-BACC-4D26-8087-36EE87E26986} - C:\PROGRA~1\OOVOOT~1\OOVOOT~1.DLL O4 - HKLM\..\Run: [igfxTray] C:\WINDOWS\system32\igfxtray.exe O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe" O4 - HKCU\..\Run: [uMService] C:\Program Files\LG Electronics\Modem USB LG Electronics\UMAService.exe O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe O4 - HKCU\..\Run: [iDMan] C:\Program Files\Internet Download Manager\IDMan.exe /onboot O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background O4 - HKCU\..\Run: [oovoo.exe] C:\Program Files\ooVoo\oovoo.exe /minimized O7 - HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\System, DisableRegedit=1 O8 - Extra context menu item: Ajouter à Kaspersky Anti-Bannière - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\ie_banner_deny.htm O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~1\OFFICE11\EXCEL.EXE/3000 O8 - Extra context menu item: Télécharger avec IDM - C:\Program Files\Internet Download Manager\IEExt.htm O8 - Extra context menu item: Télécharger le contenu de video FLV avec IDM - C:\Program Files\Internet Download Manager\IEGetVL.htm O8 - Extra context menu item: Télécharger tous les liens avec IDM - C:\Program Files\Internet Download Manager\IEGetAll.htm O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~1\OFFICE11\REFIEBAR.DLL O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} (Java Runtime Environment 1.6.0) - http://dl8-cdn-01.sun.com/s/ESD5/JSCDL/jre...ows-i586-jc.cab O17 - HKLM\System\CCS\Services\Tcpip\..\{A19C219C-8204-45A6-9E70-ED9B891EB1A6}: NameServer = 192.168.50.55 196.12.209.6 O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll (file missing) O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe -- End of file - 5596 bytes ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0055C089-8582-441B-A0BF-17B458C2A3A8}] IDMIEHlprObj Class - C:\Program Files\Internet Download Manager\IDMIECC.dll [2008-10-28 153008] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}] AVG Safe Search - C:\Program Files\AVG\AVG8\avgssie.dll [] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}] Java Plug-In SSV Helper - C:\Program Files\Java\jre6\bin\ssv.dll [2008-12-19 320920] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A057A204-BACC-4D26-8087-36EE87E26986}] ooVoo Toolbar - C:\PROGRA~1\OOVOOT~1\OOVOOT~1.DLL [2008-07-29 1987544] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A057A204-BACC-4D26-9990-79A187E2698E}] AVG Security Toolbar - C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL [] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}] Google Toolbar Helper - c:\program files\google\googletoolbar1.dll [2008-12-18 2403392] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2008-12-19 34816] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}] JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2008-12-19 73728] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] {A057A204-BACC-4D26-9990-79A187E2698E} - AVG Security Toolbar - C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL [] {2318C2B1-4965-11d4-9B18-009027A5CD4F} - &Google - c:\program files\google\googletoolbar1.dll [2008-12-18 2403392] {A057A204-BACC-4D26-8087-36EE87E26986} - ooVoo Toolbar - C:\PROGRA~1\OOVOOT~1\OOVOOT~1.DLL [2008-07-29 1987544] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2006-05-25 155648] "HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2006-05-25 126976] "SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2008-12-19 136600] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "UMService"=C:\Program Files\LG Electronics\Modem USB LG Electronics\UMAService.exe [2008-05-09 102400] "swg"=C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe [2008-12-18 171448] "IDMan"=C:\Program Files\Internet Download Manager\IDMan.exe [2008-10-28 2680240] "msnmsgr"=C:\Program Files\Windows Live\Messenger\msnmsgr.exe /background [] "oovoo.exe"=C:\Program Files\ooVoo\oovoo.exe [2008-11-20 14202672] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui] C:\WINDOWS\system32\igfxsrvc.dll [2006-05-25 348160] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad] WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\wpdshserviceobj.dll [2007-08-15 133632] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System] "DisableTaskMgr"=1 "DisableRegistryTools"=1 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "dontdisplaylastusername"=1 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 "SynchronousMachineGroupPolicy"=0 "SynchronousUserGroupPolicy"=0 "EnableLUA"=0 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoDriveTypeAutoRun"=255 "NoSMHelp"=1 "ForceClassicControlPanel"=1 "NoDesktopCleanupWizard"=1 "NoInstrumentation"=1 "NoResolveSearch"=1 "NoResolveTrack"=1 "NoSMBalloonTip"=1 "NoSMConfigurePrograms"=1 "NoStartMenuMFUprogramsList"=1 "NoStrCmpLogical"=0 "NoWelcomeScreen"=1 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoActiveDesktop"= "NoDriveTypeAutoRun"= "NoResolveTrack"= "NoSetActiveDesktop"= "HideRunAsVerb"= "NoInstrumentation"= "NoStartMenuMFUprogramsList"= [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "F:\nxtpdp.pif"="F:\nxtpdp.pif:*:Enabled:ipsec" "C:\WINDOWS\system32\rundll32.exe"="C:\WINDOWS\system32\rundll32.exe:*:Enabled:ipsec" "C:\WINDOWS\Explorer.EXE"="C:\WINDOWS\explorer.exe:*:Enabled:ipsec" "C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\umei.exe"="C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\umei.exe:*:Enabled:ipsec" "C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\qokiuh.exe"="C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\qokiuh.exe:*:Enabled:ipsec" "C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\mpss.exe"="C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\mpss.exe:*:Enabled:ipsec" "C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\dajxo.exe"="C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\dajxo.exe:*:Enabled:ipsec" "C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\winjefp.exe"="C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\winjefp.exe:*:Enabled:ipsec" "C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\jkjn.exe"="C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\jkjn.exe:*:Enabled:ipsec" "C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\ecks.exe"="C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\ecks.exe:*:Enabled:ipsec" "C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\winoregui.exe"="C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\winoregui.exe:*:Enabled:ipsec" "C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\jijeo.exe"="C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\jijeo.exe:*:Enabled:ipsec" "C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\windlyiyd.exe"="C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\windlyiyd.exe:*:Enabled:ipsec" "C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\winnbjj.exe"="C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\winnbjj.exe:*:Enabled:ipsec" "C:\Program Files\Internet Explorer\IEXPLORE.EXE"="C:\Program Files\Internet Explorer\IEXPLORE.EXE:*:Enabled:ipsec" "C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\winrwqlpq.exe"="C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\winrwqlpq.exe:*:Enabled:ipsec" "C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\ojyfmg.exe"="C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\ojyfmg.exe:*:Enabled:ipsec" "C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\winetepro.exe"="C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\winetepro.exe:*:Enabled:ipsec" "C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\winlctjt.exe"="C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\winlctjt.exe:*:Enabled:ipsec" "C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\winmyaxx.exe"="C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\winmyaxx.exe:*:Enabled:ipsec" "C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\winsnkv.exe"="C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\winsnkv.exe:*:Enabled:ipsec" "C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\winirhapy.exe"="C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\winirhapy.exe:*:Enabled:ipsec" "C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\winhoudea.exe"="C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\winhoudea.exe:*:Enabled:ipsec" "C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\bwein.exe"="C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\bwein.exe:*:Enabled:ipsec" "C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\dkstti.exe"="C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\dkstti.exe:*:Enabled:ipsec" "C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\winfkwcw.exe"="C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\winfkwcw.exe:*:Enabled:ipsec" "C:\Program Files\LG Electronics\Modem USB LG Electronics\UMAService.exe"="C:\Program Files\LG Electronics\Modem USB LG Electronics\UMAService.exe:*:Enabled:ipsec" "C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\wintxrtq.exe"="C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\wintxrtq.exe:*:Enabled:ipsec" "C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\wineskwje.exe"="C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\wineskwje.exe:*:Enabled:ipsec" "C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\fwnulr.exe"="C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\fwnulr.exe:*:Enabled:ipsec" "C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\winfsatx.exe"="C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\winfsatx.exe:*:Enabled:ipsec" "C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\jgjlo.exe"="C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\jgjlo.exe:*:Enabled:ipsec" "C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\winunxpf.exe"="C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\winunxpf.exe:*:Enabled:ipsec" "C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\winjxoivk.exe"="C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\winjxoivk.exe:*:Enabled:ipsec" "C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\gxnkx.exe"="C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\gxnkx.exe:*:Enabled:ipsec" "C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\ewfkgb.exe"="C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\ewfkgb.exe:*:Enabled:ipsec" "C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\winsxwmh.exe"="C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\winsxwmh.exe:*:Enabled:ipsec" "C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\winhkyth.exe"="C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\winhkyth.exe:*:Enabled:ipsec" "C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\achei.exe"="C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\achei.exe:*:Enabled:ipsec" "C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\ycyacd.exe"="C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\ycyacd.exe:*:Enabled:ipsec" "C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\wincncml.exe"="C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\wincncml.exe:*:Enabled:ipsec" "C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\winnvlij.exe"="C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\winnvlij.exe:*:Enabled:ipsec" "C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\wrqgom.exe"="C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\wrqgom.exe:*:Enabled:ipsec" "C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\winqpyup.exe"="C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\winqpyup.exe:*:Enabled:ipsec" "C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\winjyuep.exe"="C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\winjyuep.exe:*:Enabled:ipsec" "C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\vdgx.exe"="C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\vdgx.exe:*:Enabled:ipsec" "C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\uoky.exe"="C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\uoky.exe:*:Enabled:ipsec" "C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\winfvsje.exe"="C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\winfvsje.exe:*:Enabled:ipsec" "C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\wintybd.exe"="C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\wintybd.exe:*:Enabled:ipsec" "C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\pnsc.exe"="C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\pnsc.exe:*:Enabled:ipsec" "C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\winwvnsv.exe"="C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\winwvnsv.exe:*:Enabled:ipsec" "C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\cswvc.exe"="C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\cswvc.exe:*:Enabled:ipsec" "C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\wincamj.exe"="C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\wincamj.exe:*:Enabled:ipsec" "C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\winrnsk.exe"="C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\winrnsk.exe:*:Enabled:ipsec" "C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\wincxmq.exe"="C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\wincxmq.exe:*:Enabled:ipsec" "C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\wintdpxss.exe"="C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\wintdpxss.exe:*:Enabled:ipsec" "C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\yffllo.exe"="C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\yffllo.exe:*:Enabled:ipsec" "C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\qjebm.exe"="C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\qjebm.exe:*:Enabled:ipsec" "C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\winsypyod.exe"="C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\winsypyod.exe:*:Enabled:ipsec" "C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\wiamy.exe"="C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\wiamy.exe:*:Enabled:ipsec" "C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\winvndlrs.exe"="C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\winvndlrs.exe:*:Enabled:ipsec" "C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\fbhf.exe"="C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\fbhf.exe:*:Enabled:ipsec" "C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\wintoamw.exe"="C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\wintoamw.exe:*:Enabled:ipsec" "C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\cvbe.exe"="C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\cvbe.exe:*:Enabled:ipsec" "C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\winqwpg.exe"="C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\winqwpg.exe:*:Enabled:ipsec" "C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\winiuru.exe"="C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\winiuru.exe:*:Enabled:ipsec" "C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\kqcwnb.exe"="C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\kqcwnb.exe:*:Enabled:ipsec" "C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\winjkdecc.exe"="C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\winjkdecc.exe:*:Enabled:ipsec" "C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\winfbuhy.exe"="C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\winfbuhy.exe:*:Enabled:ipsec" "C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\winqbcx.exe"="C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\winqbcx.exe:*:Enabled:ipsec" "C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\xjhvpo.exe"="C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\xjhvpo.exe:*:Enabled:ipsec" "C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\winulxtwl.exe"="C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\winulxtwl.exe:*:Enabled:ipsec" "C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\winxich.exe"="C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\winxich.exe:*:Enabled:ipsec" "C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\wingtml.exe"="C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\wingtml.exe:*:Enabled:ipsec" "C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\winbfssrf.exe"="C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\winbfssrf.exe:*:Enabled:ipsec" "C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\winsxgfuc.exe"="C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\winsxgfuc.exe:*:Enabled:ipsec" "C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\ohwh.exe"="C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\ohwh.exe:*:Enabled:ipsec" "C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\winnowrp.exe"="C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\winnowrp.exe:*:Enabled:ipsec" "C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\winvvnk.exe"="C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\winvvnk.exe:*:Enabled:ipsec" "C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\winjfrovl.exe"="C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\winjfrovl.exe:*:Enabled:ipsec" "C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\wincvtgnp.exe"="C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\wincvtgnp.exe:*:Enabled:ipsec" "C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\gocn.exe"="C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\gocn.exe:*:Enabled:ipsec" "C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\ugdaai.exe"="C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\ugdaai.exe:*:Enabled:ipsec" "C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\hwhoy.exe"="C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\hwhoy.exe:*:Enabled:ipsec" "C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\eudj.exe"="C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\eudj.exe:*:Enabled:ipsec" "C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\winxlmqq.exe"="C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\winxlmqq.exe:*:Enabled:ipsec" "C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\oqfoy.exe"="C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\oqfoy.exe:*:Enabled:ipsec" "C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\winighfc.exe"="C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\winighfc.exe:*:Enabled:ipsec" "C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\rsawtx.exe"="C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\rsawtx.exe:*:Enabled:ipsec" "C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\dagh.exe"="C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\dagh.exe:*:Enabled:ipsec" "C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\winguck.exe"="C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\winguck.exe:*:Enabled:ipsec" "C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\winefcxd.exe"="C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\winefcxd.exe:*:Enabled:ipsec" "C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\yfvhp.exe"="C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\yfvhp.exe:*:Enabled:ipsec" "C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\winsigbl.exe"="C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\winsigbl.exe:*:Enabled:ipsec" "C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\winecra.exe"="C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\winecra.exe:*:Enabled:ipsec" "C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\kjgvrd.exe"="C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\kjgvrd.exe:*:Enabled:ipsec" "C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\winnwajff.exe"="C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\winnwajff.exe:*:Enabled:ipsec" "C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\windqpetp.exe"="C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\windqpetp.exe:*:Enabled:ipsec" "C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\winogff.exe"="C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\winogff.exe:*:Enabled:ipsec" [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "C:\Program Files\MSN Messenger\livecall.exe"="C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)" "C:\Program Files\MSN Messenger\msnmsgr.exe"="C:\Program Files\MSN Messenger\msnmsgr.exe:*:Enabled:MSN Messenger 7.0" ======File associations====== .reg - edit - .reg - open - ======List of files/folders created in the last 1 months====== 2008-12-20 17:56:20 ----D---- C:\Program Files\trend micro 2008-12-20 17:56:19 ----D---- C:\rsit 2008-12-20 01:57:08 ----D---- C:\Documents and Settings\WTrust-Enigma\Application Data\ooVoo Details 2008-12-20 01:57:05 ----D---- C:\Program Files\oovooToolbar 2008-12-20 01:57:05 ----D---- C:\Documents and Settings\WTrust-Enigma\Application Data\oovooToolbar 2008-12-20 01:56:56 ----D---- C:\Program Files\ooVoo 2008-12-20 01:24:07 ----D---- C:\Program Files\MSN Messenger 2008-12-19 23:38:39 ----SHD---- C:\Config.Msi 2008-12-19 20:35:22 ----D---- C:\Documents and Settings\All Users\Application Data\Kaspersky Lab Setup Files 2008-12-19 16:02:12 ----D---- C:\Documents and Settings\WTrust-Enigma\Application Data\Foxit 2008-12-19 15:58:43 ----D---- C:\Program Files\CCleaner 2008-12-19 14:21:06 ----D---- C:\Documents and Settings\WTrust-Enigma\Application Data\WinRAR 2008-12-19 14:18:20 ----D---- C:\WINDOWS\Sun 2008-12-19 14:18:03 ----A---- C:\WINDOWS\system32\javaws.exe 2008-12-19 14:18:03 ----A---- C:\WINDOWS\system32\javaw.exe 2008-12-19 14:18:03 ----A---- C:\WINDOWS\system32\java.exe 2008-12-19 14:18:03 ----A---- C:\WINDOWS\system32\deploytk.dll 2008-12-19 14:17:51 ----D---- C:\Program Files\Java 2008-12-19 13:57:52 ----D---- C:\Documents and Settings\WTrust-Enigma\Application Data\Sun 2008-12-19 13:50:52 ----D---- C:\Documents and Settings\WTrust-Enigma\Application Data\dvdcss 2008-12-19 01:22:28 ----D---- C:\Documents and Settings\WTrust-Enigma\Application Data\vlc 2008-12-19 01:20:07 ----D---- C:\Program Files\VideoLAN 2008-12-18 23:21:29 ----DC---- C:\WINDOWS\system32\DRVSTORE 2008-12-18 20:16:12 ----D---- C:\WINDOWS\SxsCaPendDel 2008-12-18 20:12:06 ----D---- C:\WINDOWS\system32\appmgmt 2008-12-18 17:19:17 ----D---- C:\WINDOWS\system32\DirectX 2008-12-18 17:18:50 ----N---- C:\WINDOWS\system32\spmsg.dll 2008-12-18 17:18:50 ----A---- C:\WINDOWS\system32\spupdsvc.exe 2008-12-18 17:18:48 ----HDC---- C:\WINDOWS\$NtUninstallWIC$ 2008-12-18 15:45:20 ----SHD---- C:\RECYCLER 2008-12-18 15:39:14 ----A---- C:\WINDOWS\ODBC.INI 2008-12-18 15:38:15 ----D---- C:\Program Files\Fichiers communs\DESIGNER 2008-12-18 15:38:09 ----D---- C:\WINDOWS\SHELLNEW 2008-12-18 15:38:08 ----D---- C:\Program Files\Microsoft.NET 2008-12-18 15:38:08 ----D---- C:\Program Files\Microsoft Office 2008-12-18 15:33:55 ----RHD---- C:\MSOCache 2008-12-18 15:22:09 ----RA---- C:\WINDOWS\system32\kbda3.dll 2008-12-18 15:22:09 ----RA---- C:\WINDOWS\system32\kbda2.dll 2008-12-18 15:22:09 ----RA---- C:\WINDOWS\system32\kbda1.dll 2008-12-18 15:01:55 ----D---- C:\Program Files\WinRAR 2008-12-18 14:40:30 ----D---- C:\Documents and Settings\WTrust-Enigma\Application Data\IDM 2008-12-18 14:40:30 ----D---- C:\Documents and Settings\WTrust-Enigma\Application Data\DMCache 2008-12-18 14:40:25 ----D---- C:\Program Files\Internet Download Manager 2008-12-18 14:25:05 ----D---- C:\Program Files\Fichiers communs\Windows Live 2008-12-18 13:30:31 ----D---- C:\Documents and Settings\WTrust-Enigma\Application Data\Google 2008-12-18 13:23:09 ----D---- C:\Documents and Settings\All Users\Application Data\Google 2008-12-18 13:23:07 ----AD---- C:\Documents and Settings\All Users\Application Data\TEMP 2008-12-18 13:23:00 ----D---- C:\Documents and Settings\All Users\Application Data\SpeedBit 2008-12-18 13:22:57 ----D---- C:\Program Files\Google 2008-12-18 12:49:38 ----D---- C:\Documents and Settings\WTrust-Enigma\Application Data\Macromedia 2008-12-18 12:49:02 ----A---- C:\WINDOWS\ModemLog_LGE EVDO USB Modem.txt 2008-12-18 12:47:53 ----D---- C:\Documents and Settings\All Users\Application Data\InstallShield 2008-12-18 12:47:48 ----D---- C:\Program Files\LG Electronics 2008-12-18 00:33:46 ----A---- C:\WINDOWS\system32\h323log.txt 2008-12-18 00:32:11 ----A---- C:\WINDOWS\system32\usbui.dll 2008-12-18 00:30:25 ----SHD---- C:\WINDOWS\Installer 2008-12-18 00:30:25 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI 2008-12-18 00:30:24 ----D---- C:\Program Files\Fichiers communs\ODBC 2008-12-18 00:30:24 ----D---- C:\Program Files\Fichiers communs 2008-12-18 00:30:24 ----D---- C:\Program Files 2008-12-18 00:30:24 ----A---- C:\WINDOWS\ODBCINST.INI 2008-12-18 00:30:16 ----A---- C:\WINDOWS\system32\irclass.dll 2008-12-18 00:30:14 ----N---- C:\WINDOWS\system32\CONFIG.TMP 2008-12-18 00:30:14 ----A---- C:\WINDOWS\TASKMAN.EXE 2008-12-18 00:30:13 ----A---- C:\WINDOWS\system32\batt.dll 2008-12-18 00:30:12 ----A---- C:\WINDOWS\system32\storprop.dll 2008-12-18 00:30:12 ----A---- C:\WINDOWS\NOTEPAD.EXE 2008-12-18 00:30:03 ----ASH---- C:\Documents and Settings\All Users\Application Data\desktop.ini 2008-12-18 00:29:18 ----RA---- C:\WINDOWS\SET4.tmp 2008-12-18 00:29:16 ----RA---- C:\WINDOWS\SET3.tmp 2008-12-18 00:29:11 ----D---- C:\WINDOWS\system32\CatRoot2 2008-12-18 00:29:11 ----D---- C:\WINDOWS\system32\CatRoot 2008-12-18 00:29:05 ----SD---- C:\Documents and Settings\All Users\Application Data\Microsoft 2008-12-18 00:28:27 ----A---- C:\WINDOWS\system32\Prounstl.exe 2008-12-18 00:28:26 ----A---- C:\WINDOWS\system32\NicInst.dll 2008-12-18 00:28:26 ----A---- C:\WINDOWS\system32\NicEtCo.dll 2008-12-18 00:28:26 ----A---- C:\WINDOWS\system32\NicCo.dll 2008-12-18 00:28:25 ----A---- C:\WINDOWS\system32\e1000msg.dll 2008-12-18 00:27:52 ----D---- C:\Documents and Settings 2008-12-18 00:27:51 ----SHD---- C:\System Volume Information 2008-12-18 00:27:07 ----SH---- C:\boot.ini 2008-12-18 00:24:18 ----SD---- C:\WINDOWS\Downloaded Program Files 2008-12-18 00:24:18 ----RSD---- C:\WINDOWS\Fonts 2008-12-18 00:24:18 ----D---- C:\WINDOWS\WinSxS 2008-12-18 00:24:18 ----D---- C:\WINDOWS\Web 2008-12-18 00:24:18 ----D---- C:\WINDOWS\WBEM 2008-12-18 00:24:18 ----D---- C:\WINDOWS\twain_32 2008-12-18 00:24:18 ----D---- C:\WINDOWS\Temp 2008-12-18 00:24:18 ----D---- C:\WINDOWS\system32\wins 2008-12-18 00:24:18 ----D---- C:\WINDOWS\system32\wbem 2008-12-18 00:24:18 ----D---- C:\WINDOWS\system32\usmt 2008-12-18 00:24:18 ----D---- C:\WINDOWS\system32\spool 2008-12-18 00:24:18 ----D---- C:\WINDOWS\system32\ShellExt 2008-12-18 00:24:18 ----D---- C:\WINDOWS\system32\Setup 2008-12-18 00:24:18 ----D---- C:\WINDOWS\system32\ras 2008-12-18 00:24:18 ----D---- C:\WINDOWS\system32\PreInstall 2008-12-18 00:24:18 ----D---- C:\WINDOWS\system32\npp 2008-12-18 00:24:18 ----D---- C:\WINDOWS\system32\mui 2008-12-18 00:24:18 ----D---- C:\WINDOWS\system32\icsxml 2008-12-18 00:24:18 ----D---- C:\WINDOWS\system32\ias 2008-12-18 00:24:18 ----D---- C:\WINDOWS\system32\fr-fr 2008-12-18 00:24:18 ----D---- C:\WINDOWS\system32\export 2008-12-18 00:24:18 ----D---- C:\WINDOWS\system32\en 2008-12-18 00:24:18 ----D---- C:\WINDOWS\system32\drivers 2008-12-18 00:24:18 ----D---- C:\WINDOWS\system32\dhcp 2008-12-18 00:24:18 ----D---- C:\WINDOWS\system32\config 2008-12-18 00:24:18 ----D---- C:\WINDOWS\system32\3com_dmi 2008-12-18 00:24:18 ----D---- C:\WINDOWS\system32\3076 2008-12-18 00:24:18 ----D---- C:\WINDOWS\system32\2052 2008-12-18 00:24:18 ----D---- C:\WINDOWS\system32\1054 2008-12-18 00:24:18 ----D---- C:\WINDOWS\system32\1042 2008-12-18 00:24:18 ----D---- C:\WINDOWS\system32\1041 2008-12-18 00:24:18 ----D---- C:\WINDOWS\system32\1037 2008-12-18 00:24:18 ----D---- C:\WINDOWS\system32\1036 2008-12-18 00:24:18 ----D---- C:\WINDOWS\system32\1033 2008-12-18 00:24:18 ----D---- C:\WINDOWS\system32\1031 2008-12-18 00:24:18 ----D---- C:\WINDOWS\system32\1028 2008-12-18 00:24:18 ----D---- C:\WINDOWS\system32\1025 2008-12-18 00:24:18 ----D---- C:\WINDOWS\system32 2008-12-18 00:24:18 ----D---- C:\WINDOWS\system 2008-12-18 00:24:18 ----D---- C:\WINDOWS\security 2008-12-18 00:24:18 ----D---- C:\WINDOWS\Resources 2008-12-18 00:24:18 ----D---- C:\WINDOWS\repair 2008-12-18 00:24:18 ----D---- C:\WINDOWS\Provisioning 2008-12-18 00:24:18 ----D---- C:\WINDOWS\PeerNet 2008-12-18 00:24:18 ----D---- C:\WINDOWS\PCHealth 2008-12-18 00:24:18 ----D---- C:\WINDOWS\Offline Web Pages 2008-12-18 00:24:18 ----D---- C:\WINDOWS\mui 2008-12-18 00:24:18 ----D---- C:\WINDOWS\msapps 2008-12-18 00:24:18 ----D---- C:\WINDOWS\Media 2008-12-18 00:24:18 ----D---- C:\WINDOWS\java 2008-12-18 00:24:18 ----D---- C:\WINDOWS\inf 2008-12-18 00:24:18 ----D---- C:\WINDOWS\ime 2008-12-18 00:24:18 ----D---- C:\WINDOWS\Help 2008-12-18 00:24:18 ----D---- C:\WINDOWS\Driver Cache 2008-12-18 00:24:18 ----D---- C:\WINDOWS\Debug 2008-12-18 00:24:18 ----D---- C:\WINDOWS\Cursors 2008-12-18 00:24:18 ----D---- C:\WINDOWS\Connection Wizard 2008-12-18 00:24:18 ----D---- C:\WINDOWS\Config 2008-12-18 00:24:18 ----D---- C:\WINDOWS\AppPatch 2008-12-18 00:24:18 ----D---- C:\WINDOWS\addins 2008-12-18 00:24:18 ----D---- C:\WINDOWS 2008-12-18 00:09:40 ----D---- C:\Documents and Settings\WTrust-Enigma\Application Data\AVGTOOLBAR 2008-12-18 00:09:35 ----D---- C:\Documents and Settings\All Users\Application Data\avg8 2008-12-18 00:06:42 ----A---- C:\WINDOWS\system32\igfxres.dll 2008-12-18 00:05:12 ----A---- C:\WINDOWS\system32\ksuser.dll 2008-12-18 00:05:10 ----HD---- C:\Program Files\InstallShield Installation Information 2008-12-18 00:05:10 ----D---- C:\Program Files\Analog Devices 2008-12-18 00:05:10 ----A---- C:\WINDOWS\system32\DSndUp.exe 2008-12-18 00:05:10 ----A---- C:\WINDOWS\system32\CleanUp.exe 2008-12-18 00:05:10 ----A---- C:\WINDOWS\system32\a3d.dll 2008-12-18 00:05:05 ----D---- C:\Program Files\Fichiers communs\InstallShield 2008-12-18 00:03:35 ----A---- C:\WINDOWS\system32\igfxzoom.exe 2008-12-18 00:03:35 ----A---- C:\WINDOWS\system32\igfxtray.exe 2008-12-18 00:03:35 ----A---- C:\WINDOWS\system32\igfxsrvc.dll 2008-12-18 00:03:35 ----A---- C:\WINDOWS\system32\igfxress.dll 2008-12-18 00:03:34 ----D---- C:\Dell 2008-12-18 00:03:34 ----A---- C:\WINDOWS\system32\igfxpph.dll 2008-12-18 00:03:34 ----A---- C:\WINDOWS\system32\igfxhk.dll 2008-12-18 00:03:34 ----A---- C:\WINDOWS\system32\igfxext.exe 2008-12-18 00:03:34 ----A---- C:\WINDOWS\system32\igfxexps.dll 2008-12-18 00:03:34 ----A---- C:\WINDOWS\system32\igfxeud.dll 2008-12-18 00:03:34 ----A---- C:\WINDOWS\system32\igfxdo.dll 2008-12-18 00:03:34 ----A---- C:\WINDOWS\system32\igfxdiag.exe 2008-12-18 00:03:34 ----A---- C:\WINDOWS\system32\igfxdgps.dll 2008-12-18 00:03:34 ----A---- C:\WINDOWS\system32\igfxdev.dll 2008-12-18 00:03:34 ----A---- C:\WINDOWS\system32\igfxcfg.exe 2008-12-18 00:03:34 ----A---- C:\WINDOWS\system32\ialmrnt5.dll 2008-12-18 00:03:34 ----A---- C:\WINDOWS\system32\ialmrem.dll 2008-12-18 00:03:34 ----A---- C:\WINDOWS\system32\ialmgicd.dll 2008-12-18 00:03:34 ----A---- C:\WINDOWS\system32\ialmgdev.dll 2008-12-18 00:03:34 ----A---- C:\WINDOWS\system32\ialmdnt5.dll 2008-12-18 00:03:34 ----A---- C:\WINDOWS\system32\ialmdev5.dll 2008-12-18 00:03:34 ----A---- C:\WINDOWS\system32\ialmdd5.dll 2008-12-18 00:03:34 ----A---- C:\WINDOWS\system32\iAlmCoIn_v4544.dll 2008-12-18 00:03:34 ----A---- C:\WINDOWS\system32\hkcmd.exe 2008-12-18 00:03:34 ----A---- C:\WINDOWS\system32\hccutils.dll 2008-12-17 23:47:51 ----D---- C:\Documents and Settings\WTrust-Enigma\Application Data\Identities 2008-12-17 23:47:48 ----HD---- C:\Program Files\Uninstall Information 2008-12-17 23:47:41 ----D---- C:\Program Files\TUGZip 2008-12-17 23:42:45 ----SD---- C:\Documents and Settings\WTrust-Enigma\Application Data\Microsoft 2008-12-17 23:42:45 ----ASH---- C:\Documents and Settings\WTrust-Enigma\Application Data\desktop.ini 2008-12-17 23:42:41 ----D---- C:\WINDOWS\Prefetch 2008-12-17 23:42:40 ----SD---- C:\WINDOWS\system32\Microsoft 2008-12-17 23:41:12 ----D---- C:\Program Files\WPI 2008-12-17 23:40:09 ----RSD---- C:\WINDOWS\assembly 2008-12-17 23:39:48 ----D---- C:\WINDOWS\Microsoft.NET 2008-12-17 23:39:00 ----A---- C:\WINDOWS\control.ini 2008-12-17 23:39:00 ----A---- C:\AUTOEXEC.BAT 2008-12-17 23:38:39 ----A---- C:\WINDOWS\system32\mapi32.dll 2008-12-17 23:38:38 ----D---- C:\WINDOWS\system32\dllcache 2008-12-17 23:37:56 ----RAH---- C:\WINDOWS\system32\logonui.exe.manifest 2008-12-17 23:37:51 ----RAH---- C:\WINDOWS\system32\cdplayer.exe.manifest 2008-12-17 23:37:26 ----A---- C:\WINDOWS\system32\desktop.ini 2008-12-17 23:37:26 ----A---- C:\WINDOWS\desktop.ini 2008-12-17 23:37:22 ----A---- C:\WINDOWS\system32\acctres.dll 2008-12-17 23:37:21 ----D---- C:\Program Files\Fichiers communs\Services 2008-12-17 23:37:18 ----SD---- C:\WINDOWS\Tasks 2008-12-17 23:37:18 ----A---- C:\WINDOWS\system32\icfgnt5.dll 2008-12-17 23:37:17 ----D---- C:\Program Files\Fichiers communs\MSSoap 2008-12-17 23:37:13 ----D---- C:\WINDOWS\system32\Macromed 2008-12-17 23:37:10 ----A---- C:\WINDOWS\system32\qmgrprxy.dll 2008-12-17 23:37:10 ----A---- C:\WINDOWS\system32\qmgr.dll 2008-12-17 23:37:10 ----A---- C:\WINDOWS\system32\bitsprx3.dll 2008-12-17 23:37:10 ----A---- C:\WINDOWS\system32\bitsprx2.dll 2008-12-17 23:37:08 ----D---- C:\WINDOWS\system32\Restore 2008-12-17 23:37:08 ----A---- C:\WINDOWS\system32\srsvc.dll 2008-12-17 23:37:08 ----A---- C:\WINDOWS\system32\srrstr.dll 2008-12-17 23:37:08 ----A---- C:\WINDOWS\system32\fltMc.exe 2008-12-17 23:37:08 ----A---- C:\WINDOWS\system32\fltlib.dll 2008-12-17 23:37:07 ----A---- C:\WINDOWS\system32\srclient.dll 2008-12-17 23:37:07 ----A---- C:\WINDOWS\system32\msoert2.dll 2008-12-17 23:37:07 ----A---- C:\WINDOWS\system32\msoeacct.dll 2008-12-17 23:37:05 ----A---- C:\WINDOWS\system32\inetres.dll 2008-12-17 23:37:05 ----A---- C:\WINDOWS\system32\inetcomm.dll 2008-12-17 23:37:01 ----D---- C:\Program Files\Outlook Express 2008-12-17 23:37:01 ----A---- C:\WINDOWS\system32\schedsvc.dll 2008-12-17 23:37:01 ----A---- C:\WINDOWS\system32\mstinit.exe 2008-12-17 23:37:00 ----A---- C:\WINDOWS\system32\mstask.dll 2008-12-17 23:37:00 ----A---- C:\WINDOWS\system32\isign32.dll 2008-12-17 23:37:00 ----A---- C:\WINDOWS\system32\inetcfg.dll 2008-12-17 23:37:00 ----A---- C:\WINDOWS\system32\icwphbk.dll 2008-12-17 23:37:00 ----A---- C:\WINDOWS\system32\icwdial.dll 2008-12-17 23:36:53 ----D---- C:\Program Files\Fichiers communs\System 2008-12-17 23:36:53 ----D---- C:\Program Files\Fichiers communs\Microsoft Shared 2008-12-17 23:36:52 ----D---- C:\Program Files\Internet Explorer 2008-12-17 23:36:37 ----A---- C:\WINDOWS\vbaddin.ini 2008-12-17 23:36:37 ----A---- C:\WINDOWS\vb.ini 2008-12-17 23:36:31 ----D---- C:\WINDOWS\Registration 2008-12-17 23:35:49 ----D---- C:\Program Files\Windows Media Player 2008-12-17 23:35:38 ----D---- C:\Program Files\Notepad++ 2008-12-17 23:35:37 ----D---- C:\Program Files\Unlocker 2008-12-17 23:35:33 ----A---- C:\WINDOWS\system32\xvidvfw.dll 2008-12-17 23:35:33 ----A---- C:\WINDOWS\system32\xvidcore.dll 2008-12-17 23:35:27 ----A---- C:\WINDOWS\system32\whois.exe 2008-12-17 23:35:27 ----A---- C:\WINDOWS\system32\vcdrom.exe 2008-12-17 23:35:25 ----A---- C:\WINDOWS\sumatrapdfprefs.txt 2008-12-17 23:35:25 ----A---- C:\WINDOWS\SumatraPDF.exe 2008-12-17 23:35:24 ----A---- C:\WINDOWS\system32\StripMyRights.exe 2008-12-17 23:35:22 ----A---- C:\WINDOWS\system32\qfecheck.exe 2008-12-17 23:35:21 ----A---- C:\WINDOWS\system32\pskill.exe 2008-12-17 23:35:17 ----D---- C:\WINDOWS\Magnétophone 2008-12-17 23:35:12 ----D---- C:\WINDOWS\system32\skins 2008-12-17 23:35:12 ----A---- C:\WINDOWS\system32\iColorFolder.exe 2008-12-17 23:35:11 ----A---- C:\WINDOWS\system32\iColorFolder.dll 2008-12-17 23:35:10 ----D---- C:\Program Files\HiJackThis 2008-12-17 23:35:09 ----D---- C:\Program Files\Paint.NET 2008-12-17 23:35:08 ----D---- C:\WINDOWS\LangDLLs 2008-12-17 23:35:08 ----A---- C:\WINDOWS\DamnNFO.exe 2008-12-17 23:35:07 ----A---- C:\WINDOWS\system32\HashTab.dll 2008-12-17 23:35:07 ----A---- C:\WINDOWS\system32\CMExt.dll 2008-12-17 23:35:05 ----D---- C:\Program Files\Windows Trust 2008-12-17 23:35:00 ----A---- C:\WINDOWS\system32\usrlogon.cmd 2008-12-17 23:35:00 ----A---- C:\WINDOWS\system32\tsshutdn.exe 2008-12-17 23:35:00 ----A---- C:\WINDOWS\system32\tslabels.ini 2008-12-17 23:35:00 ----A---- C:\WINDOWS\system32\tskill.exe 2008-12-17 23:35:00 ----A---- C:\WINDOWS\system32\tsdiscon.exe 2008-12-17 23:35:00 ----A---- C:\WINDOWS\system32\tscon.exe 2008-12-17 23:35:00 ----A---- C:\WINDOWS\system32\sndvol32.exe 2008-12-17 23:35:00 ----A---- C:\WINDOWS\system32\reset.exe 2008-12-17 23:35:00 ----A---- C:\WINDOWS\system32\calc.exe 2008-12-17 23:34:59 ----A---- C:\WINDOWS\system32\shadow.exe 2008-12-17 23:34:59 ----A---- C:\WINDOWS\system32\rwinsta.exe 2008-12-17 23:34:59 ----A---- C:\WINDOWS\system32\regini.exe 2008-12-17 23:34:58 ----A---- C:\WINDOWS\system32\rdpcfgex.dll 2008-12-17 23:34:58 ----A---- C:\WINDOWS\system32\qwinsta.exe 2008-12-17 23:34:58 ----A---- C:\WINDOWS\system32\qappsrv.exe 2008-12-17 23:34:58 ----A---- C:\WINDOWS\system32\msg.exe 2008-12-17 23:34:58 ----A---- C:\WINDOWS\system32\logoff.exe 2008-12-17 23:34:58 ----A---- C:\WINDOWS\system32\cdmodem.dll 2008-12-17 23:34:57 ----A---- C:\WINDOWS\system32\msdtcprf.ini 2008-12-17 23:34:50 ----A---- C:\WINDOWS\system32\mtxlegih.dll 2008-12-17 23:34:50 ----A---- C:\WINDOWS\system32\mtxex.dll 2008-12-17 23:34:50 ----A---- C:\WINDOWS\system32\mtxdm.dll 2008-12-17 23:34:50 ----A---- C:\WINDOWS\system32\dcomcnfg.exe 2008-12-17 23:34:50 ----A---- C:\WINDOWS\system32\comrepl.dll 2008-12-17 23:34:50 ----A---- C:\WINDOWS\system32\comaddin.dll 2008-12-17 23:34:49 ----A---- C:\WINDOWS\system32\stclient.dll 2008-12-17 23:34:49 ----A---- C:\WINDOWS\system32\comsnap.dll 2008-12-17 23:34:45 ----A---- C:\WINDOWS\system32\wmimgmt.msc 2008-12-17 23:34:44 ----A---- C:\WINDOWS\system32\tscfgwmi.dll 2008-12-17 23:34:44 ----A---- C:\WINDOWS\system32\mstscax.dll 2008-12-17 23:34:43 ----A---- C:\WINDOWS\system32\tscupgrd.exe 2008-12-17 23:34:43 ----A---- C:\WINDOWS\system32\termsrv.dll 2008-12-17 23:34:43 ----A---- C:\WINDOWS\system32\sessmgr.exe 2008-12-17 23:34:43 ----A---- C:\WINDOWS\system32\remotepg.dll 2008-12-17 23:34:43 ----A---- C:\WINDOWS\system32\rdshost.exe 2008-12-17 23:34:43 ----A---- C:\WINDOWS\system32\rdsaddin.exe 2008-12-17 23:34:43 ----A---- C:\WINDOWS\system32\rdpwsx.dll 2008-12-17 23:34:43 ----A---- C:\WINDOWS\system32\rdchost.dll 2008-12-17 23:34:43 ----A---- C:\WINDOWS\system32\mstsc.exe 2008-12-17 23:34:42 ----A---- C:\WINDOWS\system32\rdpsnd.dll 2008-12-17 23:34:42 ----A---- C:\WINDOWS\system32\rdpclip.exe 2008-12-17 23:34:41 ----A---- C:\WINDOWS\system32\qprocess.exe 2008-12-17 23:34:41 ----A---- C:\WINDOWS\system32\icaapi.dll 2008-12-17 23:34:41 ----A---- C:\WINDOWS\system32\cfgbkend.dll 2008-12-17 23:34:40 ----D---- C:\WINDOWS\system32\MsDtc 2008-12-17 23:34:40 ----A---- C:\WINDOWS\system32\msdtcuiu.dll 2008-12-17 23:34:39 ----A---- C:\WINDOWS\system32\xolehlp.dll 2008-12-17 23:34:39 ----A---- C:\WINDOWS\system32\mtxoci.dll 2008-12-17 23:34:39 ----A---- C:\WINDOWS\system32\msdtctm.dll 2008-12-17 23:34:39 ----A---- C:\WINDOWS\system32\msdtcprx.dll 2008-12-17 23:34:38 ----D---- C:\WINDOWS\system32\Com 2008-12-17 23:34:38 ----A---- C:\WINDOWS\system32\msdtclog.dll 2008-12-17 23:34:38 ----A---- C:\WINDOWS\system32\msdtc.exe 2008-12-17 23:34:38 ----A---- C:\WINDOWS\system32\colbact.dll 2008-12-17 23:34:38 ----A---- C:\WINDOWS\system32\clbcatex.dll 2008-12-17 23:34:38 ----A---- C:\WINDOWS\system32\catsrvps.dll 2008-12-17 23:34:37 ----A---- C:\WINDOWS\system32\comsvcs.dll 2008-12-17 23:34:37 ----A---- C:\WINDOWS\system32\catsrvut.dll 2008-12-17 23:34:37 ----A---- C:\WINDOWS\system32\catsrv.dll 2008-12-17 23:34:36 ----A---- C:\WINDOWS\system32\comuid.dll 2008-12-17 23:34:36 ----A---- C:\WINDOWS\system32\clbcatq.dll 2008-12-17 23:34:28 ----A---- C:\WINDOWS\system32\servdeps.dll 2008-12-17 23:34:28 ----A---- C:\WINDOWS\system32\mmfutil.dll 2008-12-17 23:34:28 ----A---- C:\WINDOWS\system32\licwmi.dll 2008-12-17 23:34:28 ----A---- C:\WINDOWS\system32\cmprops.dll ======List of files/folders modified in the last 1 months====== 2008-12-18 00:03:11 ----A---- C:\WINDOWS\system.ini 2008-12-17 23:38:57 ----A---- C:\WINDOWS\win.ini ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R1 intelppm;Pilote de processeur Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2004-08-19 40320] R3 abp470n5;abp470n5; \??\C:\WINDOWS\system32\drivers\pjkmnn.sys [] R3 aeaudio;aeaudio; C:\WINDOWS\system32\drivers\aeaudio.sys [2002-04-01 4816] R3 E1000;Intel® PRO/1000 Network Connection Driver; C:\WINDOWS\system32\DRIVERS\e1000325.sys [2007-03-25 171416] R3 hidusb;Pilote de classe HID Microsoft; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2002-08-30 9600] R3 ialm;ialm; C:\WINDOWS\system32\DRIVERS\ialmnt5.sys [2006-05-25 807804] R3 mouhid;Pilote HID de souris; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2007-08-17 12288] R3 smwdm;smwdm; C:\WINDOWS\system32\drivers\smwdm.sys [2002-12-19 539008] R3 usbehci;Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2007-08-15 30208] R3 UsbEvdoAtc;LGE EVDO USB Serial Port; C:\WINDOWS\system32\DRIVERS\lgevdoatc.sys [2007-08-28 19840] R3 usbevdobus;LGE EVDO Composite USB Device; C:\WINDOWS\system32\DRIVERS\lgevdobus.sys [2007-08-28 12800] R3 UsbEvdoDiag;LGE EVDO USB Serial DM Port; C:\WINDOWS\system32\DRIVERS\lgevdodiag.sys [2007-08-28 19840] R3 USBEVDOModem;LGE EVDO USB Modem; C:\WINDOWS\system32\DRIVERS\lgevdomodem.sys [2007-08-28 21632] R3 usbhub;Concentrateur USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2007-08-15 59264] R3 usbuhci;Pilote miniport de contrôleur hôte universel USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2007-08-15 20608] S3 cpuz127;cpuz127; \??\C:\DOCUME~1\WTRUST~1\LOCALS~1\Temp\cpuz_x32.sys [] S3 USBSTOR;Pilote de stockage de masse USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-03 26496] S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2007-08-15 77568] S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2007-08-15 82944] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2008-12-19 152984] S3 gusvc;Google Updater Service; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2008-12-18 211896] S3 ose;Office Source Engine; C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 158768] S4 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2005-09-23 29896] S4 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2005-09-23 66240] S4 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2004-08-19 14336] -----------------EOF----------------- info.txt logfile of random's system information tool 1.05 2008-12-20 17:57:27 ======Uninstall list====== Archiveur WinRAR-->C:\Program Files\WinRAR\uninstall.exe CCleaner (remove only)-->"C:\Program Files\CCleaner\uninst.exe" Google Toolbar for Internet Explorer-->MsiExec.exe /I{DBEA1034-5882-4A88-8033-81C4EF0CFA29} Google Toolbar for Internet Explorer-->regsvr32 /u /s "c:\program files\google\googletoolbar1.dll" HijackThis 2.0.2-->"C:\Program Files\trend micro\HijackThis.exe" /uninstall Hotfix pour Microsoft .NET Framework 2.0 (KB926776)-->C:\WINDOWS\system32\msiexec.exe /promptrestart /uninstall {BA8E6AD7-3834-4BAD-9CC2-5171E45E3C6E} /package {7131646D-CD3C-40F4-97B9-CD9E4E6262EF} Intel® Extreme Graphics Driver-->RUNDLL32.EXE C:\WINDOWS\system32\ialmrem.dll,UninstallW2KIGfx PCI\VEN_8086&DEV_2562 Intel® PRO Network Connections Drivers-->Prounstl.exe Internet Download Manager-->C:\Program Files\Internet Download Manager\Uninstall.exe Java 6 Update 11-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216011FF} Microsoft .NET Framework 2.0-->C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Microsoft .NET Framework 2.0\install.exe Microsoft Office Professional Edition 2003-->MsiExec.exe /I{9011040C-6000-11D3-8CFE-0150048383C9} Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d} Modem USB LG Electronics-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{3DC6E06A-F0F7-47F7-8479-FFCAF60F538F}\setup.exe" -l0x40c -removeonly Module de prise en charge linguistique de Microsoft .NET Framework 2.0 - FRA-->C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Microsoft .NET Framework 2.0 Language Pack - FRA\install.exe MSN Messenger 7.0-->MsiExec.exe /I{ABEB838C-A1A7-4C5D-B7E1-8B4314600820} ooVoo Toolbar-->C:\Program Files\oovooToolbar\uninstall.exe ooVoo-->"C:\Program Files\InstallShield Installation Information\{FAA7F8FF-3C05-4A61-8F14-D8A6E9ED6623}\setup.exe" -runfromtemp -l0x040c -removeonly Security Update pour Microsoft .NET Framework 2.0 (KB917283)-->C:\WINDOWS\system32\msiexec.exe /promptrestart /uninstall {967B098A-042D-4367-BAC9-8BC11684174F} /package {7131646D-CD3C-40F4-97B9-CD9E4E6262EF} SoundMAX-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F0A37341-D692-11D4-A984-009027EC0A9C}\setup.exe" TugZip-->"C:\Program Files\TUGZip\Désinstaller.exe" Unlocker 1.8.5-->C:\Program Files\Unlocker\uninst.exe VLC media player 0.9.8a-->C:\Program Files\VideoLAN\VLC\uninstall.exe Windows Imaging Component-->"C:\WINDOWS\$NtUninstallWIC$\spuninst\spuninst.exe" WPI-->"C:\Program Files\WPI\Désinstaller.exe" Securitycenter WMI appears to be broken System event log Computer Name: TRYITFOR-35B05F Event Code: 3260 Message: Cet ordinateur a correctement été joint au workgroup 'WORKGROUP'. Record Number: 5 Source Name: Workstation Time Written: 20081217233426.000000+000 Event Type: Informations User: Computer Name: TRYITFOR-35B05F Event Code: 6011 Message: Le nom NetBIOS et le nom de l'hôte DNS de cet ordinateur ont été modifiés de MACHINENAME vers TRYITFOR-35B05F. Record Number: 4 Source Name: EventLog Time Written: 20081217233349.000000+000 Event Type: Informations User: Computer Name: MACHINENAME Event Code: 2 Message: Pendant la validation de \Device\Serial0 en tant que port série, une FIFO a été détectée. La FIFO sera utilisée. Record Number: 3 Source Name: Serial Time Written: 20081218002816.000000+000 Event Type: Informations User: Computer Name: MACHINENAME Event Code: 6005 Message: Le service d'Enregistrement d'événement a démarré. Record Number: 2 Source Name: EventLog Time Written: 20081218002759.000000+000 Event Type: Informations User: Computer Name: MACHINENAME Event Code: 6009 Message: Microsoft ® Windows ® 5.01. 2600 Service Pack 2 Uniprocessor Free. Record Number: 1 Source Name: EventLog Time Written: 20081218002759.000000+000 Event Type: Informations User: Application event log Computer Name: TRYITFOR-35B05F Event Code: 1000 Message: Les compteurs de performances pour le service WmiApRpl (WmiApRpl) ont été chargés. Les données d'enregistrement contiennent les nouvelles valeurs d'index assignées à ce service. Record Number: 5 Source Name: LoadPerf Time Written: 20081217233554.000000+000 Event Type: Informations User: Computer Name: TRYITFOR-35B05F Event Code: 1001 Message: Les compteurs de performances pour le service WmiApRpl (WmiApRpl) ont été supprimés. Les données d'enregistrement contiennent les nouvelles valeurs du dernier compteur système et les dernières entrées du registre d'aide. Record Number: 4 Source Name: LoadPerf Time Written: 20081217233554.000000+000 Event Type: Informations User: Computer Name: TRYITFOR-35B05F Event Code: 1000 Message: Les compteurs de performances pour le service WmiApRpl (WmiApRpl) ont été chargés. Les données d'enregistrement contiennent les nouvelles valeurs d'index assignées à ce service. Record Number: 3 Source Name: LoadPerf Time Written: 20081217233554.000000+000 Event Type: Informations User: Computer Name: TRYITFOR-35B05F Event Code: 1000 Message: Les compteurs de performances pour le service TermService (Services Terminal Server) ont été chargés. Les données d'enregistrement contiennent les nouvelles valeurs d'index assignées à ce service. Record Number: 2 Source Name: LoadPerf Time Written: 20081217233548.000000+000 Event Type: Informations User: Computer Name: TRYITFOR-35B05F Event Code: 1000 Message: Les compteurs de performances pour le service RemoteAccess (Routage et accès distant) ont été chargés. Les données d'enregistrement contiennent les nouvelles valeurs d'index assignées à ce service. Record Number: 1 Source Name: LoadPerf Time Written: 20081217233423.000000+000 Event Type: Informations User: ======Environment variables====== "ComSpec"=%SystemRoot%\system32\cmd.exe "Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem "windir"=%SystemRoot% "FP_NO_HOST_CHECK"=NO "OS"=Windows_NT "PROCESSOR_ARCHITECTURE"=x86 "PROCESSOR_LEVEL"=15 "PROCESSOR_IDENTIFIER"=x86 Family 15 Model 2 Stepping 7, GenuineIntel "PROCESSOR_REVISION"=0207 "NUMBER_OF_PROCESSORS"=1 "PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH "TEMP"=%SystemRoot%\TEMP "TMP"=%SystemRoot%\TEMP -----------------EOF-----------------

Mon PC n'accepte pas l'installation des antivirus. en effet, chaque fois que j'installe un antivirus je n'arrive pas à l'installer complètement; tantôt, il ne me reste que la dernière étape et la fenêtre s'en va ou que ça m'arrive au début de l'intallation. Je signale que j'ai essayé différents antivirus: kaspersky, avast, antivir, avg. je signale encore que j'ai formaté mon PC mais le problème persiste. Le problème est résolu. J'ai formaté. j'ai pu installer l'antivirus AVG. il fonctionne normalement.

chaque fois que je veux installer l'antivirus AVG, une fenêtre s'ouvre pour me demander de désinstaller l'ancien antivirus avant d'installer AVG. Or , je ne vois aucun antivirus sur mon PC sauf s'il est caché quelque part. Koi faire?

Est ce que je peux désactiver IExplorer et naviguer avec firefox seulement. Je signale que ma page de démarrage s'ouvre obligatoirement avec iexplorer même si Firefox est activé. Le problème c'est que toute page ouverte avec iexplrer fait 2 min ou un peu plus pour s'ouvrir. Iexplorer l'emporte sur firefox!!!!!!?

Est ce que je peux désactiver IExplorer et naviguer avec firefox seulement. Je signale que ma page de démarrage s'ouvre obligatoirement avec iexplorer même si Firefox est activé. Le problème c'est que toute page ouverte avec iexplrer fait 2 min ou un peu plus pour s'ouvrir. Iexplorer l'emporte sur firefox!!!!!!?

Si vous voyez que je comprends pas vite, dites-moi si le formatage du disque dur pourrait résoudre le problème.

à vrai dire , je ne suis informaticien. prière de m'indiquer les étapes à suivre pour ce faire.

merci pour votre suivi. le programme est téléchargé depuis CA AntiSpyware / CA PestPatrol / AOL Safety and Security Centre. il s'appelle SC_CAFix. quand je cick "exécuter" il s'envole. le problème persiste.